Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

USN-702-1: Samba vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) USN-702-1: Samba vulnerability
# 1  
Old 01-05-2009
USN-702-1: Samba vulnerability
Referenced CVEs:
CVE-2009-0022


Description:
===========================================================Ubuntu Security Notice USN-702-1 January 05, 2009samba vulnerabilityCVE-2009-0022===========================================================A security issue affects the following Ubuntu releases:Ubuntu 8.10This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 8.10: samba 2:3.2.3-1ubuntu3.4In general, a standard system upgrade is sufficient to effect thenecessary changes.Details follow:Gunter Höckel discovered that Samba with registry shares enabled did notproperly validate share names. An authenticated user could gain access to theroot filesystem by using an older version of smbclient and specifying anempty string as a share name. This is only an issue if registry shares areenabled on the server by setting "registry shares = yes", "include = registry",or "config backend = registry", which is not the default.





More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT CENTOS

regdiff

REGDIFF(1)						    System Administration tools 						REGDIFF(1)

NAME

       regdiff - Diff program for Windows registry files

SYNOPSIS

       regdiff [--help] [--backend=BACKEND] [--credentials=CREDENTIALS] [location]

DESCRIPTION

       regdiff compares two Windows registry files key by key and value by value and generates a text file that contains the differences between
       the two files.

       A file generated by regdiff can later be applied to a registry file by the regpatch utility.

       regdiff and regpatch use the same file format as the regedit32.exe utility from Windows.

OPTIONS

       --help
	   Show list of available options.

       --backend BACKEND
	   Name of backend to load. Possible values are: creg, regf, dir and rpc. The default is dir.

	   This argument can be specified twice: once for the first registry file and once for the second.

       --credentials=CREDENTIALS
	   Credentials to use, if any. Password should be separated from user name by a percent sign.

	   This argument can be specified twice: once for the first registry file and once for the second.

VERSION

       This man page is correct for version 4.0 of the Samba suite.

SEE ALSO

       gregedit, regshell, regpatch, regtree, samba, patch, diff

AUTHOR

       This utility is part of the Samba[1] suite, which is developed by the global Samba Team[2].

       This manpage and regdiff were written by Jelmer Vernooij.

NOTES

	1. Samba
	   http://www.samba.org/

	2. Samba Team
	   http://www.samba.org/samba/team/

Samba 4.0							    06/17/2014								REGDIFF(1)